Felix Hupfeld

Information Security & Compliance Manager @ HÜBNER Group

Kassel, Hesse, Germany

About

As an Information Security and Compliance Manager, I design and implement processes, policies, and controls to protect the organization from cyber threats and ensure regulatory compliance. I am passionate about raising awareness and training staff in information security practices. My goal is to create a culture of security that drives innovation and sustainable business success. I am also interested in data privacy and all aspects of the digital transformation.

Experience

  • HÜBNER Group (Full-time · 3 yrs 5 mos)
    • Information Security & Compliance Manager
      Apr 2024 - Present · 2 yrs 4 mos

      - Information Security Governance and Compliance Activities - Implementation of Information Security, IT Risk & AI Risk Management Processes, Policies, and Guidelines - Supporting the Implementation of the Information Security Management System (ISMS) - Management of Cybersecurity Awareness Campaigns and Project Lead in Implementing a Group-wide Awareness Platform for IT Security, Data Privacy & AI Compliance - Security Incident Process Design and Handling of Security and Data Privacy Incidents - Preparation for Information Security Regulations, e. g. NIS 2 Directive and EU AI Act - Responsible for IT and AI Compliance Checks as part of the IT Demand Process (with focus on SaaS) - Supporting the IT Department in implementing Security and Data Privacy Controls - Handling of IT issues according to ITIL and by using IT Service Management Tools (e. g. Jira, Confluence) - Representing the IT Department in internal and external audits - Close collaboration with IT teams, Data Privacy Officer, legal department, and quality management department

    • Junior Information Security & Compliance Manager
      Mar 2023 - Apr 2024 · 1 yr 2 mos

  • Working Student: Risk Advisory / Cyber Risk at Deloitte Deutschland
    Jun 2019 - May 2020 · 1 yr

    Cyber Resilience and Red Team member - open source intelligence analyses and threat intelligence reports for various Red Team projects - online / social media analyses - design of documents for cyber attack simulations - responsibility for editing an internal Team newsletter - support of the team in various areas (proposals, marketing, research, reports, presentations)

  • Intern: Risk Advisory / Cyber Risk at Deloitte Deutschland
    Feb 2019 - Apr 2019 · 3 mos

    Cyber Resilience and Red Team member - open source intelligence analyses and threat intelligence reports for various Red Team projects - support of the team in various areas (proposals, marketing, research, reports, presentations)